Webmaster Forum

Following things can be done for preventing your PHP Form from Hijacking

1. Make register_globals to off to prevent Form Injection with malicious data.2. Make Error_reporting to E_ALL so that all variables will be intialized before using them.3. Make practice of using htmlentities() strip_tags() utf8_decode() and addslashes() for filtering malicious data in php4. Make practice of using mysql_escape_string() in mysql.

Following things can be done for preventing your PHP Form from Hijacking

1. Make register_globals to off to prevent Form Injection with malicious data.2. Make Error_reporting to E_ALL so that all variables will be intialized before using them.3. Make practice of using htmlentities() strip_tags() utf8_decode() and addslashes() for filtering malicious data in php4. Make practice of using mysql_escape_string() in mysql.

Please let me know if anyone has something more to add in this.

I was also looking for the PHP Hijacking solutions and your suggestions are good enough and thanks for these but I want more things to save my developed website in PHP. I'll also share my solutions.